Lucene search
+L

70 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 4: libdwarf (TSSA-2024:0174)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0174 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

6.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 4: libdwarf (TSSA-2024:0169)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0169 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.5CVSS7.1AI score0.01089EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:56 p.m.7 views

CVE-2022-32200

libdwarf 0.4.0 has a heap-based buffer over-read in dwarfcheckstringvalid in dwarfutil.c...

7.8CVSS7AI score0.00925EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.10 views

Azure Linux 3.0 Security Update: libdwarf (CVE-2024-2002)

The version of libdwarf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2002 advisory. - A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf May try t...

7.5CVSS7.2AI score0.01089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/01 12:0 a.m.16 views

Amazon Linux 2 : libdwarf (ALAS-2024-2688)

The version of libdwarf installed on the remote host is prior to 20130207-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2688 advisory. A flaw was found in libdwarf. A possible memory leak allows an attacker to input a specially crafted file, leading to a crash...

6.5CVSS6.6AI score0.00823EPSS
Exploits0References4
OSV
OSV
added 2023/04/16 12:15 a.m.20 views

AZL-33328 CVE-2020-28163 affecting package libdwarf for versions less than 0.9.0

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS6.7AI score0.00787EPSS
Exploits0References1
Prion
Prion
added 2023/04/16 12:15 a.m.11 views

Out-of-bounds

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

4.3CVSS6.3AI score0.00823EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/15 12:0 a.m.6 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.8AI score0.00787EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/04/15 12:0 a.m.12 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS7.3AI score0.00787EPSS
Exploits0References4
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Medium: libdwarf

Issue Overview: A double-free vulnerability was found in libdwarf's dwarfexpandframeinstructions function of the dwarfframe.c file. A carefully crafted object file could cause the 'dwarfdump' utility to do a double free in handling an error condition. This issue could cause a segmentation violati...

8.8CVSS7.5AI score0.00935EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.3 views

SUSE CVE-2016-5027

dwarfform.c in libdwarf 20160115 allows remote attackers to cause a denial of service crash via a crafted elf file...

5.5CVSS6.7AI score0.01505EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.5 views

SUSE CVE-2016-5035

The dwarfreadlinetableheader function in dwarflinetablereader.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read via a crafted file...

6.5CVSS6.7AI score0.0292EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.4 views

SUSE CVE-2016-5038

The dwarfgetmacrostartendfile function in dwarfmacro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read via a crafted string offset for .debugstr...

7.5CVSS6.8AI score0.04379EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.5 views

SUSE CVE-2017-9054

An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In dwarfdecodesleb128chk a byte pointer was dereferenced just before it was checked for being in bounds, leading to a heap-based buffer over-read...

9.8CVSS9.3AI score0.01792EPSS
Exploits0References3
OSV
OSV
added 2022/09/02 2:28 a.m.18 views

CVE-2022-39170

libdwarf 0.4.1 has a double free in dwarfexecframeinstr in dwarfframe.c...

8.8CVSS6.8AI score0.00935EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/09/02 12:0 a.m.4 views

libdwarf 资源管理错误漏洞

libdwarf is a library and command line tool for reading and writing the DWARF2 standardized debug data format. A security vulnerability exists in versions of libdwarf prior to 0.4.1 that stems from a double release of dwarfexecframeinstr in its dwarfframe.c component...

8.8CVSS7.2AI score0.00935EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/02 12:0 a.m.2 views

PT-2022-24790 · Libdwarf · Libdwarf

Name of the Vulnerable Software and Affected Versions: libdwarf version 0.4.1 Description: The issue is related to a double free in the dwarf exec frame instr function located in dwarf frame.c. Recommendations: For libdwarf version 0.4.1, at the moment, there is no information about a newer versi...

8.8CVSS7.2AI score0.00935EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2022/06/02 2:16 p.m.31 views

CVE-2022-32200

libdwarf 0.4.0 has a heap-based buffer over-read in dwarfcheckstringvalid in dwarfutil.c...

7.8CVSS7.2AI score0.00925EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/06/01 12:0 a.m.4 views

PT-2022-21148 · Libdwarf +3 · Libdwarf +3

Name of the Vulnerable Software and Affected Versions: libdwarf version 0.4.0 Description: The issue is a heap-based buffer over-read in the dwarf check string valid function located in dwarf util.c. Recommendations: For libdwarf version 0.4.0, at the moment, there is no information about a newer...

7.8CVSS7.4AI score0.00925EPSS
Exploits1References15
OSV
OSV
added 2019/07/24 4:15 a.m.3 views

ALPINE-CVE-2019-14249

dwarfelfloadheaders.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service division by zero via an ELF file with a zero-size section group SHTGROUP, as demonstrated by dwarfdump...

6.5CVSS6.7AI score0.0273EPSS
Exploits0References1
Rows per page
Query Builder